Live Webinar: From Compliance Chaos to Collaboration: The Tech Stack Reveal

Scrut innovations: August 2025 snapshot

Last updated on
September 4, 2025
min. read

In August, we focused on solving some of the most common compliance challenges: keeping risk tasks accountable across departments, ensuring secure and audit-ready offboarding, cutting down on repetitive questionnaire work, and scaling access reviews across more of your tech stack.

Here’s what’s new this month:

  • Department-based filtering for mitigation tasks
  • User deactivation with bulk task reassignment
  • Bulk moving of folders and files in the Vault
  • Auto-fill questionnaires via Trust Vault
  • 16 new Access Review integrations
  • Frameworks coverage: CMMC Level 3 (new framework), ISO 20000-1:2018 (updated mapping)

Let’s dive in.

Add more context and department-level filters to Risk Mitigation tasks

Strengthen Access Controls and Authentication

Mitigation tasks are critical for closing risks but often lack clarity and ownership. Assignees may not know the risk context or why a mitigation task exists, and tasks spanning multiple departments can create accountability gaps.

This update makes mitigation tasks more context-rich, department-aware, and trackable:

  • Risk context built in: Each mitigation task now displays its linked risk entity and treatment strategy, so assignees know why the task exists and how it contributes to closing the risk.
  • Department-level ownership via RBAC: Tasks can be assigned to a specific department. With RBAC in place, only users in that department can view or work on them.
  • Smarter dashboards: The mitigation task donut chart in the Risk Dashboard can now be filtered by department, giving teams a focused view of progress within their area.

Want to maintain a context-rich risk register where mitigation tasks are tied to the right department and backed by full risk context? Book a demo to see how Scrut helps you manage end-to-end risks with clarity and accountability.

Smarter offboarding with user deactivation

Smarter offboarding with user deactivation

When employees leave or change roles, removing access safely without disrupting the ongoing workflows is critical.

Scrut’s new User Deactivation feature gives admins a structured way to off-board users while ensuring no tasks are left in limbo. Here’s how it works:

  • Deactivate first, delete later: Instead of directly deleting a user, admins can deactivate them from the ‘Manage Users’ page. Deactivated users lose login access immediately, but all their assigned tasks remain visible and are flagged as belonging to a deactivated user.
  • Bulk task reassignment: In one step, all tasks tied to a deactivated user (across modules like Evidence tasks, policies, and CATs) can be reassigned to another active user.
  • Stay on top of deactivated accounts: The new “Deactivated users” filter can be applied in the task lists to view tasks tied to inactive users.
  • Reinstate if needed: Restore users with their pending tasks intact (unless reassigned), or permanently delete with double confirmation for security.

This update gives you better control over user lifecycle management in Scrut, ensuring security without sacrificing audit readiness.

Auto-fill questionnaires using your latest Trust Vault data

Auto-fill questionnaires using your latest Trust Vault data

Answering security questionnaires is one of the most time-consuming parts of compliance. Teams spend hours digging through documentation and policies to provide information that already exists in their systems.

With this update, Scrut Teammates can automatically read selected sections of your Trust Vault to answer security questionnaires more accurately and efficiently.

  • Admin-controlled access: Enable “AI Readability” on specific sections such as Compliance, Controls, Sub-Processors, and FAQs using simple toggles in Trust Vault settings.
  • Easy sync: Content syncs within minutes after toggling, and any updates in the Vault are reflected in responses.
  • Faster responses: Once enabled, Teammates can use the latest information from your Vault to help fill in questionnaire answers without needing to manually search.

Let Scrut Teammates auto-fill your security questionnaires using answers from your Vault, generate and assign remediation tickets, suggest fixes, and even create Jira tasks—all without lifting a finger. Book a demo to see it in action.

Organize documentation in Vault with flexible folder moves

Organize documentation in Vault with flexible folder moves

Your compliance Vault is the central place for storing evidence, reports, and documents. But as the number of files grows, organizing them the right way becomes critical.

With our latest update, you can:

  • Move entire folders (including all their nested files and subfolders) with just a few clicks
  • Bulk-move files and folders using shift-click (for ranges) or command/control-click (for specific selections)
  • Use list or grid view for easier selection within Vault, just like Google Drive

This eliminates the need to recreate folder structures or re-upload files, helping you maintain a clean and organized Vault as your documentation grows.

To try out this feature, head to the Vault section of your Scrut platform and start moving folders or files directly.

New and updated Frameworks

  • CMMC Level 3 (New Framework): Built for organizations in the Defense Industrial Base (DIB) handling Controlled Unclassified Information (CUI). Adds new requirements around access control, incident response, and configuration management — all pre-mapped with crosswalks to ISO 27001, CIS, and NIST for faster certification readiness.
  • ISO 20000-1:2018 (Updated mapping): All requirements are now fully included, with corrected control mappings and remapped evidence for a smoother, more accurate compliance process.

Access Scrut’s frameworks library, or collaborate with your Customer Success Manager to customize a setup aligned with your compliance priorities.

New and updated integrations

16 new Access Review integrations: Access Reviews are only as effective as the systems they connect to. To expand coverage, we’ve added 16 new integrations this month,  bringing Scrut’s total to over 108 supported apps.

These new connectors make it easier to automate reviews, cut down on manual exports, and keep access data comprehensive. You can now integrate Access Reviews with:

  • Active Campaign
  • Anthropic Claude
  • Cal.com
  • Databricks
  • Fireflies
  • Hive
  • NetSuite
  • Oracle Cloud HCM
  • Oracle Sales & Fusion Service
  • PandaDoc
  • SendGrid
  • Sentry
  • Snowflake
  • Stripe
  • Sumo Logic
  • Tableau

All of these are available directly in the ‘Access Review’ page. Once integrated, they also appear in Access Overview, giving admins visibility into users across apps.

Explore the full integrations library or contact your Scrut Customer Success Manager to request an integration. 

Explore Scrut in action (no demo required)

Want to see how Scrut can help you automate evidence collection, cut manual work, and stay audit-ready every day? Take our interactive product tour to explore the platform at your own pace. Start the interactive tour here.

Liked the post? Share on:
Table of contents
Subscribe to our newsletter
Get monthly updates and curated industry insights
Subscribe
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Join our community and be the first to know about updates!

Subscribe
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Related Posts

Compliance Essentials
Compliance Audit: Meaning, Types & Process
Scrut Updates
Scrut innovations: July 2025 snapshot
Risk Management
Automating risk management: A complete guide for modern teams

Ready to see what security-first GRC really looks like?

The Scrut Platform helps you move fast, stay compliant, and build securely from the start.

Book a Demo
Book a Demo